๐บ๐ธ
TPI-Abuse
2026-07-03 08:10:45
(1 hour ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 04:10:41.615853 2026] [security2:error] [pid 10576:tid 10576] [client 2a0b:8bc0:2:2a50::1:33678] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tucek.org"] [uri "/.git/HEAD"] [unique_id "akdugQZhKe43DHG1fnRuHwAAAAE"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 07:52:23
(2 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 03:52:15.414412 2026] [security2:error] [pid 10466:tid 10466] [client 2a0b:8bc0:2:2a50::1:35306] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tuscanydreamhome.radiointernational.net"] [uri "/.git/HEAD"] [unique_id "akdqLxj4yjrR2Ooi14qnbgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 06:31:20
(3 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 02:31:14.129610 2026] [security2:error] [pid 17216:tid 17216] [client 2a0b:8bc0:2:2a50::1:57782] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "120"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "tyning.com"] [uri "/.git/HEAD"] [unique_id "akdXMiOII-F5FLsM3C1TUQAAABQ"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
LRob
2026-07-03 06:15:02
(3 hours ago)
Repeated 404 errors, blocked by Fail2ban in custom-404 jail
Bad Web Bot
๐บ๐ธ
TPI-Abuse
2026-07-03 04:53:59
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 00:53:51.644260 2026] [security2:error] [pid 7353:tid 7353] [client 2a0b:8bc0:2:2a50::1:33772] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "ucommsi.com"] [uri "/.git/config"] [unique_id "akdAX_S-vkEUxQ3HbE8DVQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-03 04:19:21
(5 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Jul 03 00:19:17.194628 2026] [security2:error] [pid 25120:tid 25120] [client 2a0b:8bc0:2:2a50::1:38086] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "trucksystems.com.mx"] [uri "/.git/HEAD"] [unique_id "akc4RVUswVri7D_srTtXXgAAAAs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ณ๐ฑ
homeshowdomain.nl
2026-07-02 21:59:27
(12 hours ago)
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on ...
show more
Auto-ban: single probe for restricted files (.env / backups / admin endpoints). Likely mass-scan on 2026-07-01.
show less
Web App Attack
SSH
Hacking
๐บ๐ธ
TPI-Abuse
2026-07-02 20:57:58
(13 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 16:57:48.123228 2026] [security2:error] [pid 21463:tid 21463] [client 2a0b:8bc0:2:2a50::1:34112] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web37.dnchosting.com"] [uri "/.git/HEAD"] [unique_id "akbQzHtqsKGkaEZSBB8WVgAAAAw"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฎ๐น
VHosting
2026-07-02 19:25:07
(14 hours ago)
Detected WordPress attack from 4 different servers
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 18:35:09
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 14:35:01.915456 2026] [security2:error] [pid 25044:tid 25044] [client 2a0b:8bc0:2:2a50::1:40442] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web215.dnchosting.com"] [uri "/.git/HEAD"] [unique_id "akavVR5Yh4jq7isoOMtuzQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 18:09:49
(15 hours ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Jul 02 14:09:41.231261 2026] [security2:error] [pid 29628:tid 29628] [client 2a0b:8bc0:2:2a50::1:46796] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.env" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "web136.dnchosting.com"] [uri "/.env.local"] [unique_id "akapZX34UZn189L3px5PBgAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฑ๐ป
garmtech.com
2026-07-02 15:06:22
(18 hours ago)
IM360 WAF: Direct access to sensitive file or dotfile MV:/.env
Web App Attack
๐ฉ๐ช
neckaralb-admin.de
2026-07-02 14:16:46
(19 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฌ๐ง
retrokitty.net
2026-07-02 04:15:15
(1 day ago)
2a0b:8bc0:2:2a50::1 - - [02/Jul/2026:04:15:14 +0000] "GET /.git/HEAD HTTP/1.1" 503 19483 "-" "Mozill ...
show more
2a0b:8bc0:2:2a50::1 - - [02/Jul/2026:04:15:14 +0000] "GET /.git/HEAD HTTP/1.1" 503 19483 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 15.7; rv:149.0) Gecko/20100101 Firefox/149.0"
...
show less
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-02 03:43:58
(1 day ago)
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 30 ...
show more
(mod_security) mod_security (id:210492) triggered by 2a0b:8bc0:2:2a50::1 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jul 01 23:43:54.131059 2026] [security2:error] [pid 1069:tid 1069] [client 2a0b:8bc0:2:2a50::1:54546] ModSecurity: Access denied with code 403 (phase 1). Matched phrase "/.git/" at REQUEST_URI. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/02_Global_Generic.conf"] [line "117"] [id "210492"] [rev "3"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "running.boens.org"] [uri "/.git/HEAD"] [unique_id "akXeesqdU5iGEfPC_Z8rPQAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack